Home / Q&A
Follow via:
RSS
Email Alert
Question
0 Votes
+ -

Spyware problem..

I removed viruses from laptop .Now at startup i get mesage "windows cannot open C:\windows\sembako-cgzjplg.exe "

It's a spyware file . How do i get windows to stop searching for it at startup?
Tags: windows, security, software, programming
christjan@...
20th Feb 2009
Answer the Question

Answers (5)

Preferences
0 Votes
+ -
Read this: ...
http://www.bleepingcomputer.com/startups/sembako_cfzjkmg.exe-13961.html

You could try booting into Safe Mode with Networking, then running the online scan from there.

Alternately you could remove the hard drive, place it in a caddy, then scan it as a slave from another (uninfected) computer.
OldER Mycroft
20th Feb 2009
0 Votes
+ -
msconfig
try start>run>msconfig
click the startup tab (and maybe services)
see if you can find something that looks like *sembako*
uncheck the box
restart and scan again

if that doesnt work you should try hijackthis

good luck and post back!
Snuffy09
20th Feb 2009
0 Votes
+ -
Removal
For basic spyware removal, i use Spybot S&D from download.com. It's a free program, but its good at what it does. However, it sounds like the file was already removed.
Twors88
20th Feb 2009
0 Votes
+ -
spyware
Chances are you may have a .dll hidden somewhere that attempting to open the file on startup.

I would try the following.

Run Spybot Search and Destroy to see if you can find the location of any spyware. Write down the locations of the files. Disable system restore and reboot in safemode. Run Spybot again then reboot normally.

The reason disabling system restore is important is because the PC may have created a restore point during the time that file was on your PC essentially putting it back on the PC evertime it loads. After you've determined the spyware was deleted simply re-enable system restore and create a new restore point.

Hope this helps.
brandon.miller@...
20th Feb 2009

Replies

I have done as you said but it ditnot work. I looked in msconfig for file but nothing.i am still geting the mesage ,.Windows cannot find "C:\WINDOWS\sembako-cgzjlpg.exe".
christjan@... 23rd Feb 2009
0 Votes
+ -
Follow this link
and if it isn't already on More Information click it. It will give you access to Registry keys to enable you to find it. But first you may need to do this if you can't access the Registry.

Click Start Run and type cmd and then press Enter.

Execute the following commands in the command line in order to activate the registry editor and Task Manager: answer -? y ? - and press Enter.

reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr

reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools

http://www.sophos.com/security/analyses/viruses-and-spyware/w32brontokm.html

Edit: formatting

♪♫
Jacky Howe
Updated - 23rd Feb 2009

Replies

That worked used regedit and found it in windows\sistem.sys and deleted it . that link helped a lot to pinpoint it. thanks a lot.
christjan@... 24th Feb 2009
good to see that you are up and running.
Jacky Howe 24th Feb 2009
Answer the question
Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

Join the TechRepublic Community and join the conversation! Signing-up is free and quick, Do it now, we want to hear your opinion.

Join Login

Keep Up with TechRepublic

Discover more newsletters

Follow us however you choose!

Media Gallery

View All

Hot Discussions

Start a Discussion
View All

Hot Questions

Ask a Question